Information Systems Security Engineer (ISSE)

About The Position

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, or equivalent experience.
• 10+ years of related work experience with demonstrated ISSE/ISSO responsibilities, preferably within the Intelligence Community or DoD environment.
• Current TS/SCI with Polygraph (Required).
• Must meet DoD 8570/8140 IASAE Level II requirements (e.g., CISSP, CASP+, or CSSLP).
• Working knowledge of NIST 800-53 security controls and experience with RMF processes.
• Understanding of network protocols (TCP/IP, DNS, HTTP) and security concepts including VPNs, IDS/IPS, and DMZ configurations.
• Experience with A&A tracking tools such as Xacta or eMASS.
• Strong analytical, problem-solving, and communication skills with the ability to document technical security findings clearly.

Nice To Haves

• CISM, Security+, CCSP, or GSLC.
• CCNP Enterprise with the SD WAN, CCIE Security, JNCIS-ENT, JNCIP-ENT, or JNCIE-ENT
• Exposure to major firewall platforms (e.g., Palo Alto, Cisco ASA, Fortinet).
• Cisco Identity Services Engine (ISE), Juniper Contrail, Cisco DevNet, Juniper Automation, or other networking orchestration tool.
• Basic proficiency in Ansible, Python, PowerShell, or Bash for task automation.
• SIEM Experience

Responsibilities

• Contribute to the design and documentation of secure system architectures that meet mission requirements and security standards.
• Support Risk Management Framework (RMF) activities (Steps 1–6), assisting Information System Security Officers (ISSOs) in taking systems from initial categorization through Authorization to Operate (ATO).
• Develop and maintain Assessment & Authorization (A&A) documentation, including Systems Security Plans (SSP), Security Control Traceability Matrix (SCTM), and Body of Evidence (BoE).
• Designs security architectures from requirements phase, defining system security requirements, and integrating capabilities including Zero Trust Architecture Software Defined Networking (SDN), macro/micro-segmentation, and software-defined perimeter controls to enable continuous verification and minimize network attack surfaces.
• Participate in formal and informal design reviews to identify potential security weaknesses, deficiencies, and/or vulnerabilities in the design - evaluating designs for security impacts before implementation.
• Ensure hardware and software comply with Government Security Certification Officer (SCO) requirements and align with NIST SP 800-53, ICD 503, and CNSSI 1253 standards.
• Implement and maintain continuous monitoring (ConMon) activities using automated tools to track system health and compliance status.
• Perform risk assessments and security audits; use tools like Nessus (ACAS) and SCAP to identify, track, and remediate vulnerabilities.
• Assist with incident response activities and participate in on-call rotation for security incidents.
• Provide support for network mapping activities and system interdependencies to ensure secure data flow across the enterprise.

Benefits

• flexible time off
• robust learning resources
• competitive compensation
• competitive benefits
• learning and development opportunities
• comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.